projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c49d267) | patch
package/ghostscript: security bump to version 9.27
authorBaruch Siach <baruch@tkos.co.il>
Wed, 10 Apr 2019 04:28:19 +0000 (07:28 +0300)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 10 Apr 2019 05:42:28 +0000 (07:42 +0200)
commit10a6ea5a305015b6cf7b13591e2e56ba4b75a932
tree75331f6cdd6e2edf5cceb2cda27f0578c02311d6tree
parentc49d26798b954fe1ee0aa338e48a0b710abbef7acommit | diff
package/ghostscript: security bump to version 9.27

Fixes CVE-2019-3835, CVE-2019-3838: A specially crafted PostScript file
could use these flaws to have access to the file system outside of the
constrains imposed by -dSAFER.

Drop upstream patches.

Use the make subst function to compute the download site from version.

Cc: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/ghostscript/0002-Sanitize-op-stack-for-error-conditions.patch [deleted file] blob | history
package/ghostscript/0003-Any-transient-procedures-that-call-.force-operators.patch [deleted file] blob | history
package/ghostscript/0004-Bug700317-Fix-logic-for-an-older-change.patch [deleted file] blob | history
package/ghostscript/0005-Harden-some-uses-of-.force-operators.patch [deleted file] blob | history
package/ghostscript/0006-Undefine-a-bunch-of-gs_fonts.ps-specific-procs.patch [deleted file] blob | history
package/ghostscript/0007-Remove-.forcedef-and-harden-.force-ops-more.patch [deleted file] blob | history
package/ghostscript/ghostscript.hash diff | blob | history
package/ghostscript/ghostscript.mk diff | blob | history